[exim] Remote Recipient Blacklisting...what am I missing?

Top Page
Delete this message
Reply to this message
Author: Kevin Colagio
Date:  
To: exim-users
Subject: [exim] Remote Recipient Blacklisting...what am I missing?

[If you saw this from my gmail account, sorry for the duplication, but I
had no responses, so figure it may have been eaten along the way.]

Hey folks,

We have been hit with a lot of phishing attempts lately, and while our
users are pretty good about it, I'd like to be able to implement a
recipient blacklist on the server.

What I have so far is:

================================
## In the acl_check_rcpt section, below "accept local_parts =
postmaster : abuse"...

deny message = The recipient ($local_part@$domain) is suspected of
phising....
acl = acl_black_local

================================
## Then down below, right before the Routers section....

acl_blacklist_local:
deny hosts = lsearch;/usr/local/etc/exim.host_blacklist
deny senders = lsearch;/usr/local/etc/exim.sender_blacklist
deny recipients = lsearch;/usr/local/etc/exim.recipient_blacklist

================================

In the /usr/local/etc/exim.recipient_blacklist file, I just have email
addresses...

phisher@???



However, the mail is still sent out. What am I missing?

Thanks!

-- 
    Kevin Colagio: Systems Analyst, Reef Geek, and Perpetual Student
    Computing and Information Technology, SUNY at Geneseo, South 124
    colagio@???    (585) 245-5577     http://www.geneseo.edu
Experience is a harsh teacher, the tests are first, the lessons follow.